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CLAIMS 

5 

1 . An enforcement architecture for/digital rights management, wherein 
the architecture enforces rights in protected digital ccmtent, the architecture comprising: 
a content server for distributing the digital content; 
a license server for issuing at least one digital license corresponding 
10 to and separate from the digital content; and 

a computing device fojf receiving the distributed digital content and 
for receiving and storing any digital license/corresponding to the digital content, the 
computing device having: 

a rendering application for rendering the digital content; and 
1 5 a Digital/Rights Management (DRM) system for being 

invoked by the rendering application/upon such rendering application attempting to render 
the digital content, the DRM systeiri for determining whether a right to render the digital 
content in the manner sought exists based on any digital license stored in the computing 



W 20 



device and corresponding to the ^igital content. 

6^— 
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C3 2. The architecture of claim 1 , wherein the content server is 

communicatively coupled to/a network and distributes the digital content over the network. 

3. The architecture of claim 2, wherein the content server is 

25 communicatively coupl^ to the Internet and distributes the digital content over the 
Internet. 

4. / The architecture of claim 1, wherein the license server is 
communicatively coupled to a network and issues the at least one digital license over the 

30 network. 
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5. The architecture of claim 4, wherein the license server is 
communicatively coupled to the Internet and issues the at least one digital license over the 
Internet. 

6. The architecture of claim 1 , wherein the content server is 
communicatively coupled to a portable medium writer and distributes the digital content 
on a portable medium written by the portable medium writer, ythe portable medium selected 
from the group consisting of an optical storage medium and/a magnetic storage medium. 

7. The architecture of claim 1 , wherein the content server distributes 
the digital content in an encrypted form. 



8. The architecture of claim 7/wherein each digital license 
15 corresponding to the digital content includes: 

a decryption key that decrypts the encrypted digital content; and 
a description of the rights conferred by the license, wherein the 
encrypted digital content cannot be decrypted and rendered without obtaining such license 
from the license server. , 
20 / (A 

9. The architecture of claim 8, wherein each digital license 
corresponding to the digital content/further includes a digital signature that binds the 
license to the encrypted digital content. 

25 10. The architecture of claim 1, wherein if the DRM system determines 

that the right to render the digital content in the manner sought does not exist based on any 
digital license stored in the computing device and corresponding to the digital content, 
such DRM system directsA computing device user to the license server to obtain a digital 
license to render such digital content in the manner sought. 

30 
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1 1 . The architecture of claim 1 , wherein if the DRM systerfi determines 
that the right to render the digital content in the manner sought does not exist based on any 
digital license stored in the computing device and corresponding to the digital content, 
such DRM system transparently obtains a digital license from the licens^ server without 
any action necessary on the part of a computing device user. 



12. The architecture of claim 1, wherein the DI$M system includes a 
license store for storing digital licenses. 

10 13. The architecture of claim 1 , wherein dich digital license 

corresponding to the digital content is bound to such digital content. 

14. The architecture of claim 13, wherein each digital license 
corresponding to the digital content is bound to such ^digital content by way of a public / 

1 5 private key technique. 

15. The architecture of claim A , wherein the license server issues a 
digital license to a DRM system only if the license server trusts such DRM system to abide 
by the license. 
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16. The architecture ofyfclaim 15, wherein the content server distributes 
the digital content in an encrypted form Jand wherein the DRM system includes a trusted 
black box for performing decryption arid encryption functions for such DRM system. 

25 17. The architectifre of claim 1 6, wherein the black box includes a 

unique public / private key pair foy performing the decryption and encryption functions. 



1 8. The architecture of claim 1 7, wherein the license server issues each 
digital license in response to a/license request from the DRM system, the license request 
30 including the black box public key, the license server encrypting at least a portion of the 
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digital license according to the black box public key prior to issuance of such license, 
thereby binding such license to such black box. 



1 9. The architecture of claim 1 8, wherein the content server distributes 
5 the digital content in an encrypted form, wherein each digital license coircsponding to the 
digital content includes a decryption key that decrypts the encrypted digital content, and 
wherein the license server encrypts the decryption key in the licensee according to the black 
box public key. 

10 20. The architecture of claim 19, wherein iach digital license 

corresponding to the digital content further includes a description of the rights conferred 
by the license, wherein the encrypted digital content cannot be decrypted and rendered 
without obtaining such license from the license server/ and wherein the license server 
encrypts the rights description in the license according to the decryption key. 



15 



2 1 . The architecture of clainy 1 6, wherein the black box includes a 
version number. 



22. The architecture of^claim 21 wherein the license server issues each 
20 digital license in response to a license request from the DRM system, the license request 
including the version number of the black box, the license server determining prior to 
issuance of the license whether the version number of the black box is acceptable, the 
license server upon determining that the version number of the black box is not acceptable 
refusing to issue the license until/the black box is updated, the architecture further 
25 comprising a black box server for providing an updated black box to the DRM system. 



23. The architecture of claim 16, wherein the black box includes a 
certifying authority signature as provided by an approved certifying authority. 



30 24. The architecture of claim 23 wherein the license server issues each 
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digital license in response to a license request from the DRM system, the licenseiequest 
including the certifying authority signature, the license server determining pripr to 
issuance of the license whether the certifying authority signature is valid. 



10 



25. The architecture of claim 15, wherein each digitefl license 
corresponding to the digital content includes a description of the rigMs conferred by the 
license, and wherein the DRM system includes a trusted license eValuator for evaluating 
the rights description and allowing rendering of the digital content by the rendering 
application only if such rendering is in accordance with the rights description of the 
license. 
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26. The architecture of claim 1 further comprising an issued license 
database for maintaining information on digital lice&es issued by the license server, 
wherein if the computing device loses a received license, a re-issue thereof may be 
provided based on the information in the issue^r license database. 

27. The architecture of claim 1 further comprising an authoring tool for 
authoring the digital content distributed lay the content server in a form amenable to the 



architecture. 



(A- 



28. The architecture of claim 27 wherein the authoring tool encrypts the 
digital content according to a decryption key and stores information on the digital content 
and the encryption key in a content-key database. 

25 29. The/architecture of claim 28 wherein the license server accesses the 

information on the digital content and the encryption key in the content-key database prior 
to issuance of a license/corresponding to the digital content, and includes the decryption 
key with such license/as issued. 



30 



30. / A method for implementing digital rights management, wherein the 
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method enforces rights in protected digital content, the method comprising: 



device of a user, 



distributing the digital content from a content server tp a computing 

receiving the distributed digital content at the computing device; 
attempting to render the digital content by way of a rendering 



application; 



invoking, by the rendering application, a Digital Rights 
Management (DRM) system upon such rendering application tempting to render the 
digital content; 

1 0 determining, by the DRM system, vftiether a right to render the 

digital content in the manner sought exists based on any digital license stored in the 
computing device and corresponding to the digital cgntent; and 
if the right does not exist: 

requesting from a lfcense server a digital license that 
15 provides such right and that corresponds to andis separate from the digital content; 

issuing, by th^/license server, the digital license to the DRM 
system; / 

receiving, >6y the computing device, the issued digital license 
corresponding to the digital content frpm the license server; and 
20 storing the received digital license on the computing device. 

3 1 . The method of claim 30, wherein the distributing step comprises 
distributing the digital contentyover a network. 

25 32. The inethod of claim 3 1 , wherein the distributing step comprises 

distributing the digital content over the Internet. 



30 



33. /The method of claim 30, wherein the issuing step comprises issuing 
the digital license oyer a network. 
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The method of claim 33, wherein the issuing step comprises issuing 



the digital license over the Internet. 

35. The method of claim 30, wherein the distributing step comprises 
5 distributing the digital content on a portable medium selected from the gpoup consisting of 
an optical storage medium and a magnetic storage medium. 
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36. The method of claim 30, wherein the districting step comprises 
distributing the digital content in an encrypted form. 

37. The method of claim 36, further corjalprising including with each 
digital license corresponding to the digital content: 

a decryption key that decrypts tKe encrypted digital content; and 
a description of the rights coiuerred by the license, wherein the 

encrypted digital content cannot be decrypted anprendered without obtaining such license 

from the license server. 



20 



38. The method of clain/37, wherein the including step further 
comprises including with each digital license corresponding to the digital content a digital 
signature that binds the license to the encrypted digital content. 



25 



39. The method^f claim 30, wherein the requesting a digital license 
step comprises directing, by the DRM system, a computing device user to the license 
server to obtain a digital licensp to render such digital content in the manner sought. 

40. The method of claim 30, wherein the requesting a digital license 
step comprises transparejmy obtaining, by the DRM system, a digital license from the 
license server without my action necessary on the part of a computing device user. 



30 



41. / The method of claim 30, wherein the storing step comprises storing, 
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by the DRM system, the received digital license in a license store of the DRM syst/m. 

42. The method of claim 30, further comprising binding, by the license 
server, the digital license to the corresponding digital content. 

5 

43. The method of claim 42, comprising binding, bVthe license server, 
the digital license to the corresponding digital content by way of a puolic / private key 
technique. 

1 0 44. The method of claim 30, wherein the issuing step comprises issuing, 

by the license server, the digital license to the DRM system/nly if the license server trusts 
such DRM system to abide by the license. 

45. The method of claim 44, wherein the distributing step comprises 
15 distributing, by the content server, the digital content in an encrypted form, and further 
comprising employing a trusted black box in the/DRM system to perform decryption and 
encryption functions for such DRM system. 



46. The method of clami 45, wherein the black box includes a public / 
20 private key pair, and wherein the requesting a digital license step comprises including in 
the request the black box public key, arid further comprising encrypting, by the license 
server, at least a portion of the digital/license according to the black box public key prior to 
issuance of such license, thereby binding such license to such black box. 
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47. The method of claim 46, wherein the distributing step confprises 
distributing the digital content in an encrypted form, and further comprising: 

including with each digital license corresponding to ttfe digital 
content a decryption key that decrypts the encrypted digital content; and 
5 * encrypting, by the license server, the decryption ^ey in the license 

according to the black box public key. 

48. The method of claim 47, further comprising: 
including with each digital license corresponding to the digital 

10 content a description of the rights conferred by the license, wherein the encrypted digital 
content cannot be decrypted and rendered without obtaining such license from the license 
server; and 

encrypting, by the license serv6r, the rights description in the licence 
according to the decryption key. / 

49. The method of claim 45/ wherein the black box includes a version 
number, and wherein the requesting a digitaMicense step comprises including in the 
request the version number of the black box, and further comprising: 

determining, by the license server, prior to issuance of the license 
20 whether the version number of the black box is acceptable; and 

upon deternMnmg that the version number of the black box is not 
acceptable, the license server refusing to issue the license until the black box is updated, 
the architecture further comprisiijg a black box server for providing an updated black box 
to the DRM system. 

25 

50. The rrfethod of claim 45, wherein the black box includes a certifying 
authority signature as provided by an approved certifying authority, and wherein the 
requesting a digital license step comprises including the certifying authority signature, the 
license server determh^ng prior to issuance of the license whether the certifying authority 

30 signature is valid. 
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5 1 . The method of claim 44, wherein the issuing the digital license step 
comprises including with the digital license a description of the rights Conferred by the 
license, and further comprising: 

evaluating, by a trusted license evaluator o^fhe DRM system, the 

rights description; and 

allowing rendering of the digital contend by the rendering 
application only if such rendering is in accordance with the Rights description of the 
license. 



15 



52. The method of claim 30 furtheycomprising maintaining information 
on digital licenses issued by the license server in an/issued license database, wherein if th& 
computing device loses a received license, a re-is^ue thereof may be provided based on the 
information in the issued license database. 



20 
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53. The method of claim JO further comprising authoring, by an 
authoring tool, the digital content distributed by the content server in a form amenable to 
the architecture. 



54. The method ofyclaim 53 wherein the authoring step comprises: 
encrypting the digital content according to a decryption key; and 
storing infoimation on the digital content and the encryption key in 
a content-key database. 



55. The method of claim 54 wherein the issuing the digital license step 

comprises: 

accessing, by the license server, the information on the digital 
content and the encryption key in the content-key database prior to issuance of a license 
30 corresponding to the digital content; and 
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including the decryption key with such license as issued. 



56. An enforcement architecture for digital rights management, wherein 
the architecture enforces rights in protected digital content, the architectur/comprising: 

a content server communicatively coupled to a n^ork for 
distributing the digital content over the network; 

a license server for issuing at least one digital license corresponding 
to and separate from the digital content, the license server being/communicatively coupled 
to the network for issuing the at least one digital license over me network; and 

a computing device communicativelyxoupled to the network for 
receiving the distributed digital content and for receiving/any digital license corresponding 
to the digital content, the computing device also having: 

a memory for storing ^ny digital license corresponding to the 

digital content; 

a rendering application for attempting to render the digital 

content; and 

a Digital Rigfits Management (DRM) system for being 
invoked by the rendering application up^n such rendering application attempting to render 
the digital content, the DRM system fiar determining whether a right to render the digital 
content in the manner sought existSybased on any digital license stored in the computing 
device and corresponding to the digital content. (f^^ 

57. The architecture of claim 56, wherein the content server is 
communicatively coupled Jo the Internet and distributes the digital content over the 
Internet. 



58. 

communicatively c< 
Internet. / 



/The architecture of claim 56, wherein the license server is 

ipled to the Internet and issues the at least one digital license over the 
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59. The architecture of claim 56, wherein the content server is,also 

communicatively coupled to a portable medium writer and distributes the digital content 

on a portable medium written by the portable medium writer, the portable medium selected 

from the group consisting of an optical storage medium and a magnetic storage medium, 

and wherein the computing device includes a portable medium reader corresponding to the 

portable medium writer for receiving and reading the portable medium. 



60. The architecture of claim 56, wherein the content server distributes 
the digital content in an encrypted form. 



61 . The architecture of claim 6fr, wherein e/ch digital license 
corresponding to the digital content includes: 

a decryption key that decrypts the eficrypted digital content; and 
a description of the rights conferred by the license, wherein the 
1 5 encrypted digital content cannot be decrypted and rendered without obtaining such license 
from the license server. 

62. The architecture of claim 61, wherein each digital license 
corresponding to the digital content further includes a digital signature that binds the 

20 license to the encrypted digital content. 

63. The architecture^ claim 56, wherein if the DRM system 
determines that the right to render the'digital content in the manner sought does not exist 
based on any digital license stored in the computing device and corresponding to the 

25 digital content, such DRM system directs a computing device user to the license server to 
obtain a digital license to render/such digital content in the manner sought. 

64. The architecture of claim 56, wherein if the DRM system 
determines that the right y render the digital content in the manner sought does not exist 

30 based on any digital license stored in the computing device and corresponding to the 
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digital content, such DRM system transparently obtains a digital license from the license 
server without any action necessary on the part of a computing device user. 



65. The architecture of claim 56, wherein the DRM systjmi includes a 
5 license store for storing digital licenses. 

66. The architecture of claim 56, wherein each (Jfgital license 
corresponding to the digital content is bound to such digital conj&it. 

1 0 67. The architecture of claim 66, whereuf each digital license 

corresponding to the digital content is bound to such digital content by way of a public / 
private key technique. 



15 
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68. The architecture of claim 5$ wherein the license server issues a 
digital license to a DRM system only if the licej 
by the license. 



se server trusts such DRM system to abide 



69. The architecture of claim 68, wherein the content server distributes 
the digital content in an encrypted form and wherein the DRM system includes a trusted 
black box for performing decryption/and encryption functions for such DRM system. 



70. The architecture of claim 69, wherein the black box includes a 
unique public / private key pair/for performing the decryption and encryption functions. 



25 
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71. The architecture of claim 70, wherein the license server issues each 
digital license in response/to a license request from the DRM system, the license request 
including the black box public key, the license server encrypting at least a portion of the 
digital license according to the black box public key prior to issuance of such license, 
thereby binding sucl/license to such black box. 
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72. The architecture of claim 7 1 , wherein the content server distributes 
the digital content in an encrypted form, wherein each digital license corresponding to the 
digital content includes a decryption key that decrypts the encrypted digital content, and 
wherein the license server encrypts the decryption key in the license according to the black 
box public key. / 

73. The architecture of claim 72, wherein each digital license 
corresponding to the digital content further includes a description of then rights conferred 
by the license, wherein the encrypted digital content cannot be decrypted and rendered 
without obtaining such license from the license server, and wherein/the license server 
encrypts the rights description in the license according to the decryption key. 

74. The architecture of claim 69, wherein tile black box includes a 
version number. / 

75. The architecture of claim 74 wherein the license server issues each 
digital license in response to a license request from the DRM system, the license request 
including the version number of the black box, the license server determining prior to 
issuance of the license whether the version number of the black box is acceptable, the 
license server upon determining that the versioii number of the black box is not acceptable 
refusing to issue the license until the black box is updated, the architecture further 
comprising a black box server for providing an updated black box to the DRM system. 

/ ^ 

76. The architecture </f claim 69, wherein the black box includes a 
certifying authority signature as provided by an approved certifying authority. 

77. The architecture of claim 76 wherein the license server issues each 
digital license in response to a license request from the DRM system, the license request 
including the certifying authority signature, the license server determining prior to 
issuance of the license whether the certifying authority signature is valid. 
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78. The architecture of claim 68, wherein each digital licen/e 
corresponding to the digital content includes a description of the rights conferred by the 
license, and wherein the DRM system includes a trusted license evaluator for evaluating 
the rights description and allowing rendering of the digital content by th/rendering 
application only if such rendering is in accordance with the rights description of the 
license. 



79. The architecture of claim 56 further comprising an issued license 
1 0 database for maintaining information on digital licenses issued by the license server, 

wherein if the computing device loses a received license, a re/issue thereof may be 
provided based on the information in the issued license database. 

80. The architecture of claim 56 former comprising an authoring tool 
1 5 for authoring the digital content distributed by the content server in a form amenable to the 

architecture. 

8 1 . The architecture of claim/80 wherein the authoring tool encrypts the 
digital content according to a decryption key and stores information on the digital content 

20 and the encryption key in a content-key database. 



82. The architecture or claim 81 wherein the license server accesses the 
information on the digital content and the encryption key in the content-key database prior 
to issuance of a license corresponding to the digital content, and includes the decryption 

25 / ^ 

83. An enforcement architecture for digital rights management, wherein 
the architecture enforces rights m protected digital content, the architecture comprising: 

an authoring tool for authoring the digital content in a form 
30 amenable to the architecture;/ 
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a content server for receiving the digital content from^hfe authoring 
tool and distributing the digital content; and / 

a license server for issuing at least one digital licence corresponding 
to and separate from the digital content, wherein a computing device receives the 
distributed digital content and receives and stores any digital license/corresponding to the 
digital content, the computing device having a rendering application for rendering the 
digital content; and a Digital Rights Management (DRM) system for being invoked by the 
rendering application upon such rendering application attempting to render the digital 
content, the DRM system for determining whether a right tor render the digital content in 
the manner sought exists based on any digital license stored in the computing device and 
corresponding to the digital content. / 

84. The architecture of claim 83( wherein the content server is 
communicatively coupled to a network and distributes the digital content over the network. 

85. The architecture of clsum 84, wherein the content server is 
communicatively coupled to the Internet and distributes the digital content over the 
Internet. / „ 



86. The architecture of claim 83, wherein the license server is 
communicatively coupled to a network and issues the at least one digital license over the 
network. / 

87. The architecture of claim 86, wherein the license server is 
communicatively coupled to the Internet and issues the at least one digital license over the 
Internet. / 




88. 

communicatively coj 
on a portable mediiu 



yThe architecture of claim 83, wherein the content server is 

tpled to a portable medium writer and distributes the digital content 

l written by the portable medium writer, the portable medium selected 
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from the group consisting of an optical storage medium and a magnetic storag& medium. 

89. The architecture of claim 1 , wherein the content server distributes 
the digital content in an encrypted form. 
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90. The architecture of claim 89, wherein each digital license 

corresponding to the digital content includes: 

a decryption key that decrypts the encrypted digital content; and 
a description of the rights conferred by the license, wherein the 

encrypted digital content cannot be decrypted and rendered without obtaining such license 

from the license server. 



15 
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91 . The architecture of claim 90, Wherein each digital license 
corresponding to the digital content further include/ a digital signature that binds the 
license to the encrypted digital content. 




92. The architecture of claifa 83, wherein a computing device user is 
directed to the license server by the DRM system to obtain a digital license to render the 
digital content in the manner sought if theyDRM system determines that the right to render 
such digital content in the manner sought does not exist based on any digital license stored 
in the computing device and corresponding to the digital content. 



93. The architecture of claim 83, wherein the DRM system 
transparently obtains a digital license from the license server without any action necessary 
25 on the part of a computing device user if the DRM system determines that the right to 
render the digital content in the manner sought does not exist based on any digital license 
stored in the computing device and corresponding to the digital content. 



30 



94. Th( 
corresponding to the digii 



architecture of claim 83, wherein each digital license 
1 content is bound to such digital content. 
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95. The architecture of claim 94, wherein each digital licens 
corresponding to the digital content is bound to such digital content by wayyof a public / 
private key technique. 

5 

96. The architecture of claim 83, wherein the licen/e server issues a 
digital license to a DRM system only if the license server trusts sucjn DRM system to abide 
by the license. 

1 0 97. The architecture of claim 96, wherein ydie content server distributes 

the digital content in an encrypted form, wherein the DRM^system includes a trusted black 
box for performing decryption and encryption functions iox such DRM system, wherein 
the black box includes a unique public / private key pair for performing the decryption and 
encryption functions, and wherein the license server/issues each digital license in response 

15 to a license request from the DRM system, the license request including the black box 
public key, the license server encrypting at least/a portion of the digital license according 
to the black box public key prior to issuance 91 such license, thereby binding such license 
to such black box. 



20 98. The architecture off claim 97, wherein the content server distributes 

the digital content in an encrypted form, wherein each digital license corresponding to the 
digital content includes a decryption/key that decrypts the encrypted digital content, and 
wherein the license server encrypt^ the decryption key in the license according to the black 
box public key. / (f^— 

25 

99. The architecture of claim 98, wherein each digital license 
corresponding to the digital/content further includes a description of the rights conferred 
by the license, wherein the encrypted digital content cannot be decrypted and rendered 
without obtaining such 1/cense from the license server, and wherein the license server 
30 encrypts the rights description in the license according to the decryption key. 
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100. The architecture of claim 97, wherein the black box includes a 
version number, and wherein the license server issues each digital license in response to a 
license request from the DRM system, the license request including the version number of 
the black box, the license server detennining prior to issuance of the license whether the 
version number of the black box is acceptable, the license server upon de/ermining that the 
version number of the black box is not acceptable refusing to issue the license until the 
black box is updated, the architecture further comprising a black box /erver for providing 
an updated black box to the DRM system. 

101 . The architecture of claim 97* wherein the/black box includes a 
certifying authority signature as provided by an approved certifying authority, and wherein 
the license server issues each digital license in response to a/license request from the DRM 
system, the license request including the certifying authority signature, the license server 
determining prior to issuance of the license whether theycertifying authority signature is 
valid. 



102. The architecture of claim 96; wherein each digital license 
corresponding to the digital content includes a description of the rights conferred by the 
license, and wherein the DRM system includes/a trusted license evaluator for evaluating 
the rights description and allowing renderingyof the digital content by the rendering 
application only if such rendering is in accordance with the rights description of the 
license. 



25 103. The architecture of claim 83 further comprising an issued license 

database for maintaining information on digital licenses issued by the license server, 
wherein if the computing device lopes a received license, a re-issue thereof may be 
provided based on the information in the issued license database. 



30 



104. The architecture of claim 83 wherein the authoring tool encrypts the 
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digital content according to a decryption key and stores information on the digital content 
and the encryption key in a content-key database. 

105. The architecture of claim 104 wherein the license server accesses 
the information on the digital content and the encryption key in the content-key database 
prior to issuance of a license corresponding to tije digital content, and includes the 
decryption key with such license as issued. 



